GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,577
Composer 4,992
Erlang 39
GitHub Actions 38
Go 2,634
Maven 6,103
npm 4,258
NuGet 760
pip 4,051
Pub 12
RubyGems 955
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,294

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

525 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Incorrect Permission Assignment for Critical Resource vulnerability in Salesforce Agentforce... Moderate Unreviewed

CVE-2025-64322 was published Nov 4, 2025

Incorrect Permission Assignment for Critical Resource vulnerability in Salesforce Mulesoft... Moderate Unreviewed

CVE-2025-64319 was published Nov 4, 2025

Tampering of the registry entries might have led to preventing the ESET security products from... Moderate Unreviewed

CVE-2025-4952 was published Oct 31, 2025

Nagios XI versions prior to 2024R1.4.2 configure some systemd unit files with permission sets... Moderate Unreviewed

CVE-2025-34135 was published Oct 31, 2025

A vulnerability exists in Progress Flowmon versions prior 12.5.6 where certain system... Moderate Unreviewed

CVE-2025-11906 was published Oct 30, 2025

An incorrect permission assignment for a critical resource vulnerability was discovered in... Moderate Unreviewed

CVE-2025-62688 was published Oct 24, 2025

A vulnerability exists in certain Dahua embedded products. Third-party malicious attacker with... Moderate Unreviewed

CVE-2025-31702 was published Oct 15, 2025

Liferay has Incorrect Permission Assignment for Critical Resource Moderate

CVE-2025-62251 was published for com.liferay:com.liferay.site.navigation.menu.item.asset.vocabulary (Maven) Oct 14, 2025

IBM Transformation Advisor 2.0.1 through 4.3.1 incorrectly assigns privileges to security... Moderate Unreviewed

CVE-2025-36193 was published Sep 29, 2025

Liferay Portal Commerce component has Incorrect Permission Assignment for Critical Resource Moderate

CVE-2025-43808 was published for com.liferay.commerce:com.liferay.commerce.product.type.virtual.service (Maven) Sep 19, 2025

Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 1.0.735 and... Moderate Unreviewed

CVE-2025-34189 was published Sep 19, 2025

An improper setting of the lsid field on any sharded query can cause a crash in MongoDB routers.... Moderate Unreviewed

CVE-2025-10059 was published Sep 5, 2025

Liferay Portal users are able to add system admin portlets to pages Moderate

CVE-2025-43759 was published for com.liferay:com.liferay.layout.impl (Maven) Aug 22, 2025

Dell iDRAC Service Module (iSM), versions prior to 6.0.3.0, contains an Incorrect Permission... Moderate Unreviewed

CVE-2025-38742 was published Aug 21, 2025

IBM Edge Application Manager 4.5 could allow a local user to read or modify resources that they... Moderate Unreviewed

CVE-2025-1139 was published Aug 20, 2025

An issue has been discovered in GitLab CE/EE affecting all versions from 15.7 before 17.11.6, 18... Moderate Unreviewed

CVE-2025-5819 was published Aug 13, 2025

Permission control vulnerability in the distributed clipboard module. Impact: Successful... Moderate Unreviewed

CVE-2025-54618 was published Aug 6, 2025

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where it allows a guest... Moderate Unreviewed

CVE-2025-23285 was published Aug 3, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Moderate Unreviewed

CVE-2025-43266 was published Jul 30, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Moderate Unreviewed

CVE-2025-43247 was published Jul 30, 2025

IBM Storage Scale 5.2.3.0 and 5.2.3.1 could allow an authenticated user to obtain sensitive... Moderate Unreviewed

CVE-2025-36104 was published Jul 12, 2025

Enables an authenticated user (enrolled device) to access a service protected by Sentry even if... Moderate Unreviewed

CVE-2023-39338 was published Jul 12, 2025

Canon EOS Webcam Utility Pro for MAC OS version 2.3d (2.3.29) and earlier contains an improper... Moderate Unreviewed

CVE-2025-5995 was published Jun 26, 2025

cloud-init through 25.1.2 includes the systemd socket unit cloud-init-hotplugd.socket with... Moderate Unreviewed

CVE-2024-11584 was published Jun 26, 2025

Sangfor aTrust through 2.4.10 allows users to modify the ExecStartPre command. Moderate Unreviewed

CVE-2025-52923 was published Jun 22, 2025

Previous1…21 Next

Previous 1 2 3 4 5 … 20 21 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

525 advisories